Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.mft
File:                     pOcgX11BJXpruV-QDuwKESPnUWQ.mft (raw, json)
Hash identifier:          qQsjnmvuKsUpZRQ82DLCd5yA3psqPCERdsWlgNZNWK0=
Subject key identifier:   06:F4:3F:AE:76:D1:4D:90:14:EE:34:3B:45:B0:D9:34:69:DB:7A:93
Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
Certificate issuer:       /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Certificate serial:       019CACEBF2C768B3179C3824522B66A7A55E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.mft
Manifest number:          185E
Signing time:             Mon 02 Mar 2026 05:01:10 +0000
Manifest this update:     Mon 02 Mar 2026 05:01:10 +0000
Manifest next update:     Tue 03 Mar 2026 05:01:10 +0000
Files and hashes:         1: 75usjphnflTK9ekaeXTmIOUK9No.roa (hash: 6EuKwuh4YvgBCa5Zr1EQEmvX8bawaDXoEyNUirI2tqE=)
                          2: BYJeOMTp9VHrWuoMjPnGgfKwrc0.roa (hash: BFrY9/6iplAYN4CNa21BmE/m83H1ufk5TI5FpOMq62I=)
                          3: OhtO9gQuXsBPS-Q3O3FN8E4x348.roa (hash: o+Nr9wOEwTpH2Y6JMdDgtincCGDhZv31TNiZL0Hk3Bs=)
                          4: fEY123WrG17ZCUyz9dcKnTc2Qkc.roa (hash: ehi6sBGZP2OSU+JX6wLoNRrh9WIbrRaxXboak3XDqVc=)
                          5: pOcgX11BJXpruV-QDuwKESPnUWQ.crl (hash: InJ+ky9hKBL2Oh6G0jYOcsdWpeVyH01TmGLfqC6+C8o=)
                          6: xJFI4mrIs8uN5TlhHVLxpsA2hsU.roa (hash: 7LWb0I2IanjDr9ngdvZoV0Vpn7u1mnQr4dTehW6hxdQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 05:01:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:eb:f2:c7:68:b3:17:9c:38:24:52:2b:66:a7:a5:5e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
        Validity
            Not Before: Mar  2 05:01:10 2026 GMT
            Not After : Mar  3 05:01:10 2026 GMT
        Subject: CN=06f43fae76d14d9014ee343b45b0d93469db7a93
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:24:6e:1a:26:8e:57:3f:f3:4e:21:a3:f9:c4:
                    5a:ae:12:7a:1e:b2:9c:38:8e:1d:75:29:8b:5a:96:
                    48:6a:f5:87:17:44:46:2a:b8:28:d8:35:f9:20:e1:
                    c2:40:ae:87:a5:b4:11:51:4c:ce:06:1a:16:75:96:
                    b2:0a:3f:af:20:cf:85:81:03:c7:08:03:fe:59:45:
                    25:c0:15:a9:e2:a6:cf:d9:f6:83:f9:58:95:50:92:
                    7c:57:cb:c7:24:99:71:1d:59:88:57:6c:66:5e:4d:
                    54:bb:5d:45:5f:a6:c8:f3:d6:9d:38:18:3a:db:d0:
                    fd:9a:3d:25:46:4f:26:e8:89:4c:0b:49:25:06:0c:
                    1d:1d:ae:8e:73:13:35:3e:73:c7:bb:4f:d7:e1:70:
                    8c:dd:28:77:3e:b0:d1:72:1c:cc:e0:b6:cd:c2:93:
                    f1:ed:9c:79:a3:e9:b1:d5:6f:38:57:23:33:43:d2:
                    fe:96:99:9f:13:86:24:0a:3a:7e:36:5f:df:39:ce:
                    fe:bf:3d:31:6c:9a:2c:37:5d:b1:b1:ec:6a:25:c4:
                    64:74:6e:84:38:bc:00:62:d7:60:fe:ab:f2:20:4d:
                    00:6f:2d:ed:c2:10:e8:70:59:8f:fc:54:8c:41:9e:
                    96:00:89:fa:c5:9b:74:fe:db:da:50:a1:09:1d:f6:
                    6b:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:F4:3F:AE:76:D1:4D:90:14:EE:34:3B:45:B0:D9:34:69:DB:7A:93
            X509v3 Authority Key Identifier:
                keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:06:0a:9c:c3:77:f6:bf:64:ba:7e:bf:76:33:99:1b:9d:9c:
         6c:fc:dc:ba:63:7c:c2:e7:a7:70:77:05:fa:7e:8a:e0:e9:c7:
         a1:55:3e:5d:77:40:75:3f:7d:3f:8a:4b:4a:e9:69:63:a1:06:
         5e:dc:27:d4:17:ca:ae:89:cb:78:a1:2b:e2:ef:e1:e1:40:e6:
         9e:da:a7:2e:0e:50:94:cd:f5:41:2c:e0:4a:b5:27:d5:07:59:
         0f:bf:dd:09:17:6d:06:02:50:65:cd:bf:42:ff:ea:cc:60:bf:
         2e:5f:3e:b8:cd:ff:5e:24:09:ca:08:c6:12:d7:c5:59:0c:35:
         58:02:28:b1:9b:ce:71:f9:03:11:dc:af:2d:2f:89:33:ae:6b:
         a9:2e:00:50:bc:94:28:22:47:b6:c6:8d:91:ee:42:79:6f:eb:
         24:5e:c8:1c:b5:b1:c8:5f:3e:21:c0:bd:e9:c2:a7:9d:f9:66:
         40:64:1c:71:b2:54:a0:85:1d:ff:4b:87:5a:ee:37:4e:db:d7:
         4a:1a:79:46:2e:c8:26:1d:b7:cd:a8:4f:2e:c3:97:03:5f:01:
         bf:70:38:9b:c2:a2:ca:0c:aa:b4:8c:62:4c:cd:c1:44:c1:07:
         82:02:a5:a7:09:e8:a7:8f:39:1e:a5:7e:3e:14:6d:c3:7d:b6:
         3c:7b:c3:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:50:07 2026 by rpki-client